Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3232392e35372e302f32342d3234203d3e20313336373837.roa
File: 3138352e3232392e35372e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: fi8fS5d5SjEbG/nuUdHBjEoHlJMmda2cg5PkIl/kw+s=
Subject key identifier: D6:67:B5:41:1D:35:33:61:98:36:9E:32:0E:FA:1B:95:64:50:CC:17
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 5767E63F54807DD5496C01C247F7CA3196F3988E
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3232392e35372e302f32342d3234203d3e20313336373837.roa
Signing time: Sun 26 Nov 2023 19:50:27 +0000
ROA not before: Sun 26 Nov 2023 19:45:27 +0000
ROA not after: Sun 24 Nov 2024 19:50:27 +0000
asID: 136787
IP address blocks: 185.229.57.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:67:e6:3f:54:80:7d:d5:49:6c:01:c2:47:f7:ca:31:96:f3:98:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Nov 26 19:45:27 2023 GMT
Not After : Nov 24 19:50:27 2024 GMT
Subject: CN=D667B5411D35336198369E320EFA1B956450CC17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:5b:63:9a:3b:22:ea:6f:14:db:1f:0f:fe:2e:
58:2b:76:a8:3d:9b:17:3a:4f:35:e6:9b:78:a0:f9:
24:52:42:e6:ea:37:cb:98:74:b8:55:43:30:4c:4e:
7f:b4:0c:38:9c:22:e6:d2:a2:c1:97:89:8f:3f:99:
e9:68:4e:ec:6a:99:f6:05:e0:14:1f:9f:c1:a3:2f:
11:fd:bf:ad:b6:57:1d:65:00:43:a4:3f:de:0c:ce:
30:24:59:41:60:89:c6:3c:6e:52:84:12:03:7a:1d:
c9:69:6c:89:9c:06:4b:7a:5f:81:72:41:01:65:47:
92:00:c2:14:b7:21:da:ab:4c:1c:fe:5e:27:52:7f:
1f:b3:d8:b8:dc:93:d1:80:e4:cb:3c:14:7d:3a:66:
2a:20:cb:04:07:b4:92:86:05:99:13:5b:b1:a5:07:
96:ba:ae:4b:3b:06:15:14:0f:de:b3:af:bb:0d:d7:
27:3f:d7:fb:08:18:c7:16:71:87:10:6c:82:34:ea:
44:e1:02:51:23:51:e4:55:2a:68:bf:62:c7:00:e5:
50:c9:3d:79:36:b5:fb:bd:5f:ae:f8:29:8c:11:b3:
2b:41:f8:20:b7:03:a6:61:51:17:0d:c4:67:31:d2:
18:95:e1:45:93:e7:49:fd:a6:49:03:c5:b4:3d:eb:
e5:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:67:B5:41:1D:35:33:61:98:36:9E:32:0E:FA:1B:95:64:50:CC:17
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3232392e35372e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.57.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:51:01:1a:7a:b5:8a:15:f4:9e:5a:ff:5b:b8:0b:6a:a8:cc:
e8:5a:41:cd:bc:42:29:52:39:73:52:b5:ef:8f:eb:33:f8:59:
4c:73:4b:7b:b4:18:e5:4d:48:09:a8:56:2a:fd:d2:14:94:6f:
c6:90:cc:8e:1d:36:df:a3:be:d0:67:d1:81:98:ba:c9:34:93:
4f:04:4e:7c:b3:25:a0:c9:5a:0c:6c:9c:3b:55:c9:c5:4f:f3:
d4:db:b1:70:ee:33:85:74:b8:18:41:24:b6:d5:97:9c:5b:24:
28:ec:c6:7b:d8:03:51:99:40:ef:31:8d:ca:85:4a:a2:98:87:
2d:d8:c7:d8:be:ad:bd:ba:e2:b0:46:26:9b:77:e3:55:d1:92:
43:8c:3d:03:a3:1d:6f:7c:3a:3f:fb:9a:c9:11:78:ee:45:f5:
65:65:08:f7:f2:50:1a:b4:dc:f8:26:3c:99:80:6f:32:fb:8a:
5e:19:41:ec:be:53:1c:fe:3f:b7:8a:3b:83:bd:24:d5:4f:0e:
8e:53:d2:db:e2:ef:20:db:a2:f0:9b:84:68:31:26:78:30:3f:
11:bc:e8:70:0f:4a:5b:f4:ec:07:8d:c7:c4:81:04:ae:2a:8a:
04:d0:6f:f6:c7:02:1d:1e:8f:6a:eb:08:a6:b7:5d:b6:21:28:
4c:36:a2:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 21:49:15 2024 by rpki-client on console-ams.rpki-client.org